A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 and prior versions via an out-of-bounds read in parser_parse_for_statement_start in the js-parser-statm.c file. This issue is similar to CVE-2020-29657.
References
Link | Resource |
---|---|
https://github.com/jerryscript-project/jerryscript/issues/4754 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2022-04-07 14:15
Updated : 2022-04-14 08:45
NVD link : CVE-2021-43453
Mitre link : CVE-2021-43453
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
jerryscript
- jerryscript